phishing

Malicious actors’ GenAI use has yet to match the hype

Artificial Intelligence, bot, Cyber Threat Alliance, deepfakes, disinformation, Don't miss, Hot stuff, News, phishing, report, scams, social engineering, threat response, tips /

Malicious actors’ GenAI use has yet to match the hype 2025-01-14 at 17:08 By Zeljka Zorz Generative AI has helped lower the barrier for entry for malicious actors and has made them more efficient, i.e., quicker at creating convincing deepfakes, mounting phishing campaigns and investment scams, the most recent report by the Cyber Threat Alliance […]

React to this headline:

Loading spinner

Malicious actors’ GenAI use has yet to match the hype Read More »

The top target for phishing campaigns

cybercrime, generative AI, Netskope, News, phishing, report, survey /

The top target for phishing campaigns 2025-01-08 at 06:53 By Help Net Security Despite organizations’ repeated attempts at security awareness training, with a particular emphasis on how employees can avoid being phished, in 2024 enterprise users clicked on phishing lures at a rate nearly three times higher than in 2023, according to Netskope. More than

React to this headline:

Loading spinner

The top target for phishing campaigns Read More »

How AI and deepfakes are redefining social engineering threats

Abnormal Security, cybercrime, Egress, Ironscales, LastPass, News, Osterman Research, phishing, report, survey, Zscaler /

How AI and deepfakes are redefining social engineering threats 2025-01-07 at 06:04 By Help Net Security This article presents key insights from 2024 reports on the rise of phishing attacks, focusing on how advancements in AI and deepfake technology are making social engineering tactics more sophisticated. Cybercriminals exploit file sharing services to advance phishing attacks

React to this headline:

Loading spinner

How AI and deepfakes are redefining social engineering threats Read More »

Users receive at least one advanced phishing link every week

cybercrime, email security, News, phishing, report, SlashNext, survey /

Users receive at least one advanced phishing link every week 2025-01-06 at 06:37 By Help Net Security Phishing remains one of the most significant cyber threats impacting organizations worldwide, according to SlashNext. Credential phishing is raising Credential theft attacks surged dramatically in the second half of 2024 (703%), signaling a sharp escalation in the use

React to this headline:

Loading spinner

Users receive at least one advanced phishing link every week Read More »

When risky cybersecurity behavior becomes a habit among employees

cybercrime, human error, Mimecast, News, phishing, report, survey, user behavior /

When risky cybersecurity behavior becomes a habit among employees 2025-01-02 at 07:37 By Help Net Security While the majority of employees avoid risky behaviors, a small subset makes them a habit, posing a significant cybersecurity challenge, according to Mimecast. 48% of employees engaged in behaviors that exposed their organizations to cyber risk, with browsing violations

React to this headline:

Loading spinner

When risky cybersecurity behavior becomes a habit among employees Read More »

iOS devices more exposed to phishing than Android

Android, cybercrime, cybersecurity, iOS, Lookout, mobile security, News, phishing, report, survey /

iOS devices more exposed to phishing than Android 2024-12-26 at 06:07 By Help Net Security The mobile threat landscape continues to grow at an alarming rate as cybercrime groups shift their tactics and target mobile devices in the early stages of their attacks, according to a recent Lookout report. The report highlights insights behind a

React to this headline:

Loading spinner

iOS devices more exposed to phishing than Android Read More »

MUT-1244 targeting security researchers, red teamers, and threat actors

Checkmarx, cryptojacking, data theft, Datadog, Don't miss, GitHub, Hot stuff, News, phishing, WordPress /

MUT-1244 targeting security researchers, red teamers, and threat actors 2024-12-16 at 17:33 By Zeljka Zorz A threat actor tracked as MUT-1244 by DataDog researchers has been targeting academics, pentesters, red teamers, security researchers, as well as other threat actors, in order to steal AWS access keys, WordPress account credentials and other sensitive data. MUT-1244 has

React to this headline:

Loading spinner

MUT-1244 targeting security researchers, red teamers, and threat actors Read More »

Businesses plagued by constant stream of malicious emails

cybercrime, cybersecurity, email security, Hornetsecurity, News, phishing, report, survey /

Businesses plagued by constant stream of malicious emails 2024-12-09 at 06:03 By Help Net Security 36.9% of all emails received by businesses (20.5 billion) in 2024 were unwanted, according to Hornetsecurity’s analysis of 55.6+ billion emails processed through their security services between November 1, 2023 and October 31, 2024 – and 2.3% of those contained

React to this headline:

Loading spinner

Businesses plagued by constant stream of malicious emails Read More »

Law enforcement shuts down Manson Market cybercrime marketplace

cybercrime, cybercriminals, Europe, Europol, Hot stuff, law enforcement, News, phishing, scams /

Law enforcement shuts down Manson Market cybercrime marketplace 2024-12-05 at 17:31 By Help Net Security Europol has supported the dismantling of a sophisticated criminal network responsible for facilitating large-scale online fraud. In an operation led by the Hanover Police Department (Polizeidirektion Hannover) and the Verden Public Prosecutor’s Office (Staatsanwaltschaft Verden) in Germany, and supported by

React to this headline:

Loading spinner

Law enforcement shuts down Manson Market cybercrime marketplace Read More »

Phishers send corrupted documents to bypass email security

Any.Run, Don't miss, email security, Hot stuff, MS Office, News, phishing /

Phishers send corrupted documents to bypass email security 2024-12-03 at 14:18 By Zeljka Zorz Phishers have come up with a new trick for bypassing email security systems: corrupted MS Office documents. The spam campaign Malware hunting service Any.Run has warned last week about email campaigns luring users with promises of payments, benefits and end-of-the-year bonuses.

React to this headline:

Loading spinner

Phishers send corrupted documents to bypass email security Read More »

Domain security posture of Forbes Global 2000 companies

CSC, cybersecurity, DMARC, Don't miss, Hot stuff, human error, phishing, Video /

Domain security posture of Forbes Global 2000 companies 2024-11-26 at 06:34 By Help Net Security In this Help Net Security video, Vincent D’Angelo, Global Director of Corporate Development and Strategic Alliances with CSC, analyzes the domain security of the Forbes Global 2000. CSC’s 2024 Domain Security Report analyzes the highest and lowest-performing industries based on

React to this headline:

Loading spinner

Domain security posture of Forbes Global 2000 companies Read More »

US charges five alleged members of Scattered Spider gang

cybercrime, DOJ, law enforcement, News, phishing, scams /

US charges five alleged members of Scattered Spider gang 2024-11-21 at 18:03 By Help Net Security Law enforcement unsealed criminal charges against five alleged members of Scattered Spider, who allegedly targeted employees of companies nationwide with phishing text messages and then used the harvested employee credentials to log in and steal non-public company data and

React to this headline:

Loading spinner

US charges five alleged members of Scattered Spider gang Read More »

USDA Implements Phishing-Resistant Multi-Factor Authentication (MFA) with Fast Identity Online (FIDO)

phishing, USDA /

USDA Implements Phishing-Resistant Multi-Factor Authentication (MFA) with Fast Identity Online (FIDO) 2024-11-21 at 13:28 By daksh sharma Overview The U.S. Department of Agriculture (USDA) has announced the use of Fast IDentity Online (FIDO) protocols, a new solution for phishing-resistant authentication. This shift to FIDO-based multi-factor authentication (MFA) has proven successful in securing USDA systems against

React to this headline:

Loading spinner

USDA Implements Phishing-Resistant Multi-Factor Authentication (MFA) with Fast Identity Online (FIDO) Read More »

GoIssue phishing tool targets GitHub developer credentials

cybercrime, GitHub, News, phishing /

GoIssue phishing tool targets GitHub developer credentials 2024-11-13 at 15:49 By Mirko Zorz Researchers discovered GoIssue, a new phishing tool targeting GitHub users, designed to extract email addresses from public profiles and launch mass email attacks. Marketed on a cybercrime forum, GoIssue allows attackers to send bulk emails while keeping their identity hidden using proxies.

React to this headline:

Loading spinner

GoIssue phishing tool targets GitHub developer credentials Read More »

North Korean hackers employ new tactics to compromise crypto-related businesses

APT, backdoor, Cryptocurrency, Don't miss, financial industry, Hot stuff, macOS, Malware, News, North Korea, phishing, SentinelOne /

North Korean hackers employ new tactics to compromise crypto-related businesses 2024-11-07 at 13:49 By Zeljka Zorz North Korean hackers are targeting crypto-related businesses with phishing emails and novel macOS-specific malware. The crypto-related phishing campaign Since July 2024, phishing emails seemingly containing helpful information on risks related to the rise of the price of Bitcoin have

React to this headline:

Loading spinner

North Korean hackers employ new tactics to compromise crypto-related businesses Read More »

Beware of phishing emails delivering backdoored Linux VMs!

backdoor, Don't miss, Hot stuff, Linux, News, phishing, Securonix, virtualization /

Beware of phishing emails delivering backdoored Linux VMs! 2024-11-05 at 16:05 By Zeljka Zorz Unknown attackers are trying to trick Windows users into spinning up a custom Linux virtual machine (VM) with a pre-configured backdoor, Securonix researchers have discovered. The campaign The attack began with a phishing email, they believe, but they weren’t able to

React to this headline:

Loading spinner

Beware of phishing emails delivering backdoored Linux VMs! Read More »

Phishers reach targets via Eventbrite services

Don't miss, Eventbrite, Hot stuff, News, Perception Point, phishing /

Phishers reach targets via Eventbrite services 2024-10-29 at 15:17 By Zeljka Zorz Crooks are leveraging the event management and ticketing website Eventbrite to deliver their phishing emails to potential targets. “Since July, these attacks have increased 25% week over week, resulting in a total growth rate of 900%,” Perception Point researchers say. The phishing emails

React to this headline:

Loading spinner

Phishers reach targets via Eventbrite services Read More »

Phishing Campaign Targeting Ukraine: UAC-0215 Threatens National Security

phishing /

Phishing Campaign Targeting Ukraine: UAC-0215 Threatens National Security 2024-10-29 at 14:33 By daksh sharma Overview CERT-UA, the Cyber Emergency Response Team for Ukraine, uncovered a phishing campaign orchestrated by the threat actor UAC-0215. This campaign specifically targeted public institutions, major industries, and military units across Ukraine.    The phishing emails were cleverly disguised to promote integration

React to this headline:

Loading spinner

Phishing Campaign Targeting Ukraine: UAC-0215 Threatens National Security Read More »

Black Basta operators phish employees via Microsoft Teams

Don't miss, enterprise, Hot stuff, Microsoft Teams, News, phishing, Ransomware, ReliaQuest, SMBs, social engineering /

Black Basta operators phish employees via Microsoft Teams 2024-10-28 at 18:51 By Zeljka Zorz Black Basta ransomware affiliates are still trying to trick enterprise employees into installing remote access tool by posing as help desk workers, now also via Microsoft Teams. Phishing via MS Teams Earlier this year, Rapid7 warned about Black Basta using the

React to this headline:

Loading spinner

Black Basta operators phish employees via Microsoft Teams Read More »

Scroll to Top